File 0007-CVE-2012-4559-Ensure-we-don-t-free-blob-or-request-t.patch of Package libssh.1120

From cdddfd1947f9bccd8a1e2a1c13e135a42dfcfe3a Mon Sep 17 00:00:00 2001
From: Andreas Schneider <asn@cryptomilk.org>
Date: Fri, 5 Oct 2012 14:33:29 +0200
Subject: [PATCH 07/11] CVE-2012-4559: Ensure we don't free blob or request
 twice.

Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
(cherry picked from commit 84049cf4640f525aebefad351083ebcdd7e03fb6)
---
 src/agent.c |    2 ++
 1 file changed, 2 insertions(+)

diff --git a/src/agent.c b/src/agent.c
index a457d5e..0af2f15 100644
--- a/src/agent.c
+++ b/src/agent.c
@@ -438,6 +438,7 @@ ssh_string agent_sign_data(struct ssh_session_struct *session,
   }
 
   ssh_string_free(blob);
+  blob = NULL;
 
   reply = ssh_buffer_new();
   if (reply == NULL) {
@@ -450,6 +451,7 @@ ssh_string agent_sign_data(struct ssh_session_struct *session,
     return NULL;
   }
   ssh_buffer_free(request);
+  request = NULL;
 
   /* check if reply is valid */
   if (buffer_get_u8(reply, (uint8_t *) &type) != sizeof(uint8_t)) {
-- 
1.7.10.4

Places

File 0007-CVE-2012-4559-Ensure-we-don-t-free-blob-or-request-t.patch of Package libssh.1120

Places